Protect what matters – even after you're gone. Make a plan for your digital legacy today.
Forum Discussion
Critical: op item move caused loss of OTP field (irrecoverable 2FA data)
Hi,
I need clarification on what appears to be a serious data integrity issue with op item move.
I moved several items between vaults using:
op item move <ITEM_ID> –vault <TARGET_VAULT>
The command completed successfully. However, after the move, I discovered that the OTP (TOTP) field was missing from the items in the destination vault.
Details:
- The original items contained functioning TOTP fields.
- After the move, the OTP fields are no longer present.
- The original items are not in “Recently Deleted”.
- There was no warning, no error, and no indication that any field types would be excluded.
- There was no documentation warning that OTP fields might not be preserved.
This has resulted in effective data loss.
The TOTP secrets cannot be reconstructed. As a result, I now have to go through account recovery procedures with the affected services in order to regain 2FA access. That is time-consuming and in some cases involves manual identity verification.
From a user perspective, this is extremely concerning:
- A “move” operation implies a lossless transfer.
- OTP secrets are security-critical data.
- A password manager must guarantee preservation of all credential components, especially second factors.
If the move operation internally recreates items (rather than truly moving encrypted blobs), that behavior needs to guarantee full field fidelity — or explicitly block or warn when certain field types cannot be safely transferred.
Questions:
- Is this expected behavior or a bug?
- Are OTP fields officially supported in op item move?
- Is there any possible recovery path for the lost TOTP secrets?
- Are there plans to ensure field-type completeness during move operations?
At the moment, this behavior represents irreversible loss of authentication data without warning, which is a serious integrity issue for a password manager.
I would appreciate clarification and guidance.
3 Replies
Replies have been turned off for this discussion
Hello Phil,
Thank you for your response.
To clarify, in my case the original items are not present in “Recently Deleted,” so unfortunately there does not appear to be a recoverable copy of the previous state.
I have already reached out to support, but I currently do not feel that the situation is being taken seriously. The response so far focused on moving a newly created item with a random OTP field between vaults, where the issue understandably did not occur.
Given that you mentioned this may be a bug or a one-off case, I would greatly appreciate any further investigation into this matter, particularly to determine whether there may be server-side logs, audit traces, or internal diagnostics that could help clarify what happened during the move operation.
Please let me know if I can provide any additional details that might help your team investigate.
Best regards,
Tayfun- 1P_Dave
Moderator
I see that there's an open conversation between you and our support team via email, please continue the conversation there. To avoid having the same conversation in two places at once, I've closed this thread.
-Dave
- 1P_Phil
Hi twiechert ,
I'm super sorry to hear you had this problem. This sounds more like a bug or 1-off case.
Regarding the OTP copy, I'll have to look into this, it doesn't look like we have documentation around what happens with the move command with OTPs.
Also, there may be a copy of the old item in your "Recently Deleted" folder (at the bottom of the Vault list in the 1Password UI).
In the interim, can you please create a ticket over at mailto:support@1password.com
Thanks,
Phil & Team
